Back to overview

CVE-2026-12386

LOW
3.9
CVSS 3.1
Description
Improper null termination vulnerability in TUBITAK BILGEM Software Technologies Research Institute Pardus Pen allows Overflow Buffers. This issue affects Pardus Pen: from <=4.1.5 before 4.2.1.

Metadata

CVE ID
CVE-2026-12386
State
PUBLISHED
Assigner
TR-CERT
Reserved
2026-06-16 11:12 UTC
Published
2026-07-05 14:31 UTC
Last updated
2026-07-06 13:25 UTC
Primary CWE
CWE-170
CWE-170 Improper null termination
Vendor / Product
TUBITAK BILGEM Software Technologies Research Institute / Pardus Pen
Sources
cve.org  ·  NVD

Severity & Metrics

3.9 LOW CVSS 3.1
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:L
SSVC — CISA Coordinator
Exploitation
none
Automatable
no
Tech. Impact
partial
Affected products (1)
VendorProductPlatformVersions
TUBITAK BILGEM Software Technologies Research Institute Pardus Pen <=4.1.5 < 4.2.1
Weakness (CWE)
CWESourceDescription
CWE-170 cna CWE-170 Improper null termination
CVSS scores (1)
ScoreSeverityVersionSourceVector
3.9 LOW 3.1 cna CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:L
Back to overview